ClawHub

Coze Asr

v1.0.0

Automatic Speech Recognition (ASR) using Coze API. Use when you need to transcribe audio files to text. Supports Chinese audio transcription via Coze's speec...

0· 112·0 current·0 all-time
byxiaofei@franklu0819-lang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, SKILL.md, and the provided script all consistently implement speech-to-text via Coze API. The declared requirement (jq) and required env var (COZE_API_KEY) are appropriate for this purpose.
Instruction Scope
Instructions and the script stick to the ASR task: validating the audio file, reading COZE_API_KEY, and POSTing the file to https://api.coze.cn/v1/audio/transcriptions. Note: the script invokes curl but the manifest only lists jq as a required binary — curl should be declared. Also be aware the script uploads entire audio content to an external service (Coze), which has privacy implications.
Install Mechanism
No install spec (instruction-only + a local script) — low installer risk. Nothing is downloaded from arbitrary URLs and no archives are extracted. The script will execute network calls at runtime (curl) but does not install additional software.
Credentials
Only COZE_API_KEY is required, which is proportional to calling an authenticated ASR API. No unrelated credentials, config paths, or excessive environment access are requested.
Persistence & Privilege
The skill does not request permanent presence or elevated platform privileges (always is false). It does not modify other skills or system-wide configs.
Assessment
This skill appears to do what it says: it uploads a user-supplied audio file to Coze (https://api.coze.cn) and returns JSON transcription. Before installing or using it: (1) Be aware that your full audio file and any sensitive speech it contains will be sent to an external service — review Coze's privacy/security policy and ensure this is acceptable. (2) Provide a COZE_API_KEY with appropriate scope and rotate it if compromised. (3) The script uses curl and jq; ensure curl is available (manifest currently lists only jq). (4) Run the script in a controlled environment for testing (sandbox) and verify network egress is acceptable for your data. (5) If you need local/offline transcription or stronger data controls, consider alternatives that keep audio on-device or in a trusted environment.

Like a lobster shell, security has layers — review code before you run it.

latestvk978n3qfjcbfwbthfesz521v5x83hc40

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsjq
EnvCOZE_API_KEY

Comments